Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,238
Erlang
31
GitHub Actions
21
Go
2,005
Maven
5,000+
npm
3,716
NuGet
661
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,339 advisories

Loading
Memory corruption in HLOS while invoking IOCTL calls from user-space. High Unreviewed
CVE-2023-33022 was published Dec 5, 2023
Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call. High Unreviewed
CVE-2023-33107 was published Dec 5, 2023
Transient DOS in Bluetooth Host while rfc slot allocation. High Unreviewed
CVE-2023-28588 was published Dec 5, 2023
An integer overflow vulnerability in the source code of the QuickSec IPSec toolkit used in the... High Unreviewed
CVE-2023-4398 was published Nov 28, 2023
Texas Instruments devices running FREERTOS, malloc returns a valid pointer to a small buffer on... High Unreviewed
CVE-2021-27504 was published Nov 21, 2023
Texas Instruments TI-RTOS, when configured to use HeapMem heap(default), malloc returns a valid... High Unreviewed
CVE-2021-27502 was published Nov 21, 2023
Texas Instruments TI-RTOS returns a valid pointer to a small buffer on extremely large values.... High Unreviewed
CVE-2021-27429 was published Nov 20, 2023
Texas Instruments TI-RTOS, when configured to use HeapMem heap(default), malloc returns a... High Unreviewed
CVE-2021-22636 was published Nov 20, 2023
A local non-privileged user can make improper GPU memory processing operations to gain access to... High Unreviewed
CVE-2023-4295 was published Nov 14, 2023
Integer overflow in USB in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to... High Unreviewed
CVE-2023-5849 was published Nov 1, 2023
In Sysproxy, there is a possible out of bounds write due to an integer underflow. This could lead... High Unreviewed
CVE-2023-21375 was published Oct 30, 2023
An issue in OpenImageIO oiio v.2.4.12.0 allows a remote attacker to execute arbitrary code and... High Unreviewed
CVE-2023-42295 was published Oct 23, 2023
An integer overflow in Silicon Labs Gecko Bootloader version 4.3.1 and earlier allows unbounded... High Unreviewed
CVE-2023-3487 was published Oct 20, 2023
An integer overflow exists in the "HyperLinkFrame" stream parser of Ichitaro 2023 1.0.1.59372. A... High Unreviewed
CVE-2023-38127 was published Oct 19, 2023
zchunk before 1.3.2 has multiple integer overflows via malformed zchunk files to lib/comp/comp.c,... High Unreviewed
CVE-2023-46228 was published Oct 19, 2023
An integer overflow in xerces-c++ 3.2.3 in BigFix Platform allows remote attackers to cause out... High Unreviewed
CVE-2023-37536 was published Oct 11, 2023
A vulnerability was found in libX11 due to an integer overflow within the XCreateImage() function... High Unreviewed
CVE-2023-43787 was published Oct 10, 2023
In a non-standard configuration of Firefox, an integer overflow could have occurred based on... High Unreviewed
CVE-2023-5173 was published Sep 27, 2023
The ANSI C OPC UA SDK contains an integer overflow vulnerability that could cause the application... High Unreviewed
CVE-2023-28831 was published Sep 20, 2023
In build_read_multi_rsp of gatt_sr.cc, there is a possible out of bounds write due to an integer... High Unreviewed
CVE-2023-35673 was published Sep 11, 2023
On Windows, an integer overflow could occur in `RecordedSourceSurfaceCreation` which resulted in... High Unreviewed
CVE-2023-4576 was published Sep 11, 2023
Memory corruption in RIL due to Integer Overflow while triggering qcril_uim_request_apdu request. High Unreviewed
CVE-2023-21644 was published Sep 5, 2023
Memory corruption in Audio while validating and mapping metadata. High Unreviewed
CVE-2023-21655 was published Sep 5, 2023
Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0.1846. High Unreviewed
CVE-2023-4734 was published Sep 2, 2023
The web server Tengine 2.2.2 developed in the Nginx version from 0.5.6 thru 1.13.2 is vulnerable... High Unreviewed
CVE-2020-21699 was published Aug 22, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database